Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200511 5.5 警告
Local 		JasPer Project - JasPer の jas_seq.c の jas_seq2d_create 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9390 2017-04-25 11:01 2016-10-26 Show GitHub Exploit DB Packet Storm
200512 7.5 重要
Network 		JasPer Project - JasPer の jpc_mct.c の jpc_irct および jpc_iict 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9389 2017-04-25 11:01 2016-10-24 Show GitHub Exploit DB Packet Storm
200513 5.5 警告
Local 		JasPer Project - JasPer の jpc_mct.c の ras_getcmap 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-9388 2017-04-25 11:01 2016-10-24 Show GitHub Exploit DB Packet Storm
200514 7.8 重要
Local 		JasPer Project - JasPer の libjasper/jpc/jpc_dec.c の jpc_dec_process_siz 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-9387 2017-04-25 11:01 2016-10-23 Show GitHub Exploit DB Packet Storm
200515 5.5 警告
Local 		JasPer Project - JasPer における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-9262 2017-04-25 11:01 2016-11-7 Show GitHub Exploit DB Packet Storm
200516 5.5 警告
Local 		JasPer Project
Fedora Project		 - JasPer の libjasper/jp2/jp2_cod.c の jp2_colr_destroy 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-8887 2017-04-25 11:01 2016-10-21 Show GitHub Exploit DB Packet Storm
200517 7.8 重要
Local 		JasPer Project - JasPer の libjasper/base/jas_malloc.c の jas_malloc 関数におけるメモリ割当て違反に関する脆弱性 CWE-119
バッファエラー 		CVE-2016-8886 2017-04-25 11:01 2016-10-26 Show GitHub Exploit DB Packet Storm
200518 7.5 重要
Network 		シスコシステムズ - Cisco ASR 920 シリーズアグリゲーションサービスルータ上で稼動する Cisco IOS XE における書式文字列に関する脆弱性 CWE-134
書式文字列の問題 		CVE-2017-3859 2017-04-24 19:25 2017-03-22 Show GitHub Exploit DB Packet Storm
200519 8.8 重要
Network 		シスコシステムズ - Cisco IOS XE ソフトウェアにおける不適切な入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-3858 2017-04-24 19:25 2017-03-22 Show GitHub Exploit DB Packet Storm
200520 8.1 重要
Network 		シスコシステムズ - Cisco IOx における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-3852 2017-04-24 19:25 2017-03-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344351 - andrew_godwin bytehoard PHP remote file inclusion vulnerability in includes/webdav/server.php in Bytehoard 2.1 Epsilon/Delta allows remote attackers to execute arbitrary PHP code via a URL in the bhconfig[bhfilepath] parame… NVD-CWE-Other
CVE-2006-2849 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344352 - dotwidget dotwidget_cms PHP remote file inclusion vulnerability in dotWidget CMS 1.0.6 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the file_path paramete… CWE-94
Code Injection 		CVE-2006-2852 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344353 - lifetype lifetype SQL injection vulnerability in index.php in LifeType 1.0.4 allows remote attackers to execute arbitrary SQL commands via the articleId parameter in a ViewArticle action (viewarticleaction.class.php). NVD-CWE-Other
CVE-2006-2857 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344354 - locazo locazolist_classifieds SQL injection vulnerability in viewmsg.asp in LocazoList Classifieds 1.05e allows remote attackers to execute arbitrary SQL commands via the msgid parameter. NVD-CWE-Other
CVE-2006-2858 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344355 - webspot webspotblogging PHP remote file inclusion vulnerability in Webspotblogging 3.0.1 allows remote attackers to execute arbitrary PHP code via a URL in the path parameter to (1) inc/logincheck.inc.php, (2) inc/adminhead… CWE-94
Code Injection 		CVE-2006-2860 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344356 - dotclear dotclear PHP remote file inclusion vulnerability in layout/prepend.php in DotClear 1.2.4 and earlier allows remote attackers to execute arbitrary PHP code via a FTP URL in the blog_dc_path parameter, which pa… NVD-CWE-Other
CVE-2006-2866 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344357 - coolforum coolforum SQL injection vulnerability in editpost.php in CoolForum 0.8.3 beta and earlier allows remote attackers to execute arbitrary SQL commands via the post parameter. NVD-CWE-Other
CVE-2006-2867 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344358 - rumble rumble PHP remote file inclusion vulnerability in config.php in Rumble 1.02 allows remote attackers to execute arbitrary PHP code via a URL in the configArr[pathtodir] parameter. NVD-CWE-Other
CVE-2006-2872 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344359 - id_software quake_3_engine Stack-based buffer overflow in the CL_ParseDownload function of Quake 3 Engine 1.32c and earlier, as used in multiple products, allows remote attackers to execute arbitrary code via a svc_download co… NVD-CWE-Other
CVE-2006-2875 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm
344360 - sangwan_kim bookmark4u PHP remote file inclusion vulnerability in Bookmark4U 2.0.0 and earlier allows remote attackers to include arbitrary PHP files via the include_prefix parameter in (1) inc/dbase.php, (2) inc/config.ph… NVD-CWE-Other
CVE-2006-2877 2018-10-19 01:43 2006-06-7 Show GitHub Exploit DB Packet Storm